From owner-freebsd-net@FreeBSD.ORG  Thu Jun 14 19:36:41 2012
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (unknown [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 3A336106564A
	for <freebsd-net@freebsd.org>; Thu, 14 Jun 2012 19:36:41 +0000 (UTC)
	(envelope-from adrian.chadd@gmail.com)
Received: from mail-pz0-f54.google.com (mail-pz0-f54.google.com
	[209.85.210.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 0BF5C8FC14
	for <freebsd-net@freebsd.org>; Thu, 14 Jun 2012 19:36:41 +0000 (UTC)
Received: by dadv36 with SMTP id v36so3158042dad.13
	for <freebsd-net@freebsd.org>; Thu, 14 Jun 2012 12:36:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:sender:in-reply-to:references:date
	:x-google-sender-auth:message-id:subject:from:to:content-type;
	bh=u0NCCiXvSKYQ98clnZJJZ1VQwKTKSTWilggt8fpA5+M=;
	b=M6CqjhSaP5377fQWCaTd+BWWzbIhpooQsFz8q+Y34A37LEMJHuQJr6oygcCc3Y0UTA
	1bTKw1jCmuYsyHJbBRemcUlSqdPum/SXBGQlqWy36aecIpAY23S6iOWljrtGZngHRYNB
	zz5cK4WvCEihV6rNaWMuPZrNTfs8bTNsnnapuHD2aWbY2FJv3wa+5aa6ZhPSDF9DTDD0
	XThpDbs47lBd3GVWRkM8ClLP3x2Crn4NMxUc609tUr7GELkKd1kefbhyi+JiZxyDJY+v
	J6YJdKb9Ay/KStixDpEtjK2+ifaXbOs4V1MdrHT8G9VYivRDPTP2KwbpOkAGYyVLpGVP
	T/cQ==
MIME-Version: 1.0
Received: by 10.68.226.226 with SMTP id rv2mr11502601pbc.101.1339702600597;
	Thu, 14 Jun 2012 12:36:40 -0700 (PDT)
Sender: adrian.chadd@gmail.com
Received: by 10.143.91.18 with HTTP; Thu, 14 Jun 2012 12:36:40 -0700 (PDT)
In-Reply-To: <20120614155748.GC40355@felucia.tataz.chchile.org>
References: <4FD236D4.6090409@norma.perm.ru>
	<20120609170721.GA40355@felucia.tataz.chchile.org>
	<4FD98EC1.50200@norma.perm.ru>
	<20120614155748.GC40355@felucia.tataz.chchile.org>
Date: Thu, 14 Jun 2012 12:36:40 -0700
X-Google-Sender-Auth: YNfIDP5ksWv601acTz9UqkoI6J0
Message-ID: <CAJ-Vmo=WLtejb+LsDbdSPaVaZHQH1AnRUbU5GmNYS0G5GAQiRw@mail.gmail.com>
From: Adrian Chadd <adrian@freebsd.org>
To: "Eugene M. Zheganin" <emz@norma.perm.ru>, freebsd-net@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1
Cc: 
Subject: Re: if_ipsec
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jun 2012 19:36:41 -0000

Hm, I remember some reasons down in the deep, distant past as to why
ipsec implementations moved away from tunnel mode == tunnel
interfaces. When I was being a network engineer during the day, I
constantly hated having to implement tunnels using traffic maps rather
than actual interfaces.

Chances are bz@ would know. I suggest asking him.



Adrian